$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: HVsJtPwhXKGXYEVJc4i3nA6IL9Be3vyZFwHXl2WMLSw= Subject key identifier: 89:7E:D3:09:C4:32:EA:39:0B:C0:29:FE:D7:41:DB:43:6D:73:5D:D0 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0131 Signing time: Fri 25 Apr 2025 03:40:04 +0000 Manifest this update: Fri 25 Apr 2025 03:40:04 +0000 Manifest next update: Fri 02 May 2025 03:40:04 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: kEWPBn6fIb5H5TmpJ5QIdhSneeDNeKvPItR6sVv0pdk=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Apr 25 03:40:04 2025 GMT Not After : May 2 03:40:04 2025 GMT Subject: CN=680b0414-96e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ef:42:5d:eb:fe:a5:40:b3:de:d5:b2:3c:e6: 0d:9a:6a:c8:33:3e:0b:e7:5f:9c:ff:0c:19:ad:32: f6:e4:39:f7:03:38:ba:87:23:fe:4b:d4:cc:18:cc: a7:23:bc:3a:10:f3:0e:5b:6f:21:12:f8:07:98:bc: 24:fc:b4:02:8b:74:dd:39:96:27:c7:4e:b5:9a:89: 96:d2:b6:3c:55:45:1e:d0:87:41:30:92:c5:4f:47: 01:04:26:1c:3d:fd:21:df:0c:30:6d:40:5a:a0:06: 37:61:2d:53:cc:35:de:10:53:7a:0e:14:ab:cf:34: c6:6f:37:eb:e6:fd:b5:e5:02:62:38:8e:5b:36:43: 34:3d:59:9e:40:e8:2e:13:f6:4b:ec:fe:4c:94:b0: 1f:5b:d9:d4:6b:92:8c:d0:c5:ca:d8:56:b7:fe:3c: 9e:8e:4a:b3:66:bb:ba:16:3b:5d:c9:6b:79:38:10: f9:68:69:19:68:f4:65:42:2e:34:f6:b5:16:4f:8a: a4:8c:8a:3e:31:3c:eb:c8:ca:36:f5:69:78:32:0d: ed:73:cc:2a:34:c5:d9:c9:c2:2e:d6:b6:3f:13:3f: b5:4b:34:26:34:1b:7d:6f:a2:54:94:b3:00:e6:cc: 8e:56:3e:fc:62:c6:2d:94:4e:98:e8:15:2b:b2:c6: 72:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7E:D3:09:C4:32:EA:39:0B:C0:29:FE:D7:41:DB:43:6D:73:5D:D0 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c9:14:56:96:c3:74:70:42:cb:d0:42:d3:1d:d2:3b:15:e8: 3d:06:97:ab:f7:5e:73:6c:8a:23:44:c1:45:b6:bb:e7:57:0e: 3c:aa:52:d7:fb:8b:05:d9:db:c7:3e:a5:08:00:c3:52:a7:e2: 59:cb:f0:2e:e5:60:2a:93:79:17:a5:a1:12:38:f4:60:36:ee: 8d:f4:11:36:bb:ca:24:12:fc:d1:b7:42:84:0a:73:16:97:19: 32:ba:80:d1:bb:07:69:87:2c:99:5b:5f:93:2c:84:b4:7f:94: 16:2c:ce:98:68:a2:25:20:62:c3:df:b4:26:7a:84:0f:8d:ae: 8f:8a:16:b4:35:6e:e9:bd:af:fc:1c:68:c7:47:25:af:ff:30: 5c:7b:a2:c8:ae:55:59:80:6d:ea:ba:b4:d6:24:50:05:38:00: 99:eb:90:46:2b:e7:fc:ef:05:dc:d5:32:d0:63:b5:42:78:3f: 5f:d9:0a:f4:4c:b9:20:2a:8c:66:7c:f0:c1:6b:6c:6c:88:94: c5:e9:be:8c:00:f4:2b:62:75:6d:dd:c8:07:57:d9:66:28:3b: b4:c9:b4:3d:58:11:70:78:97:8b:dc:b0:44:4b:9a:e2:62:29: ab:f9:2d:38:da:a1:2b:e5:dd:6d:ee:20:8c:97:dd:7c:1b:01: 9a:bc:62:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwNDI1MDM0MDA0WhcNMjUwNTAyMDM0MDA0WjAYMRYwFAYD VQQDEw02ODBiMDQxNC05NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5u9CXev+pUCz3tWyPOYNmmrIMz4L51+c/wwZrTL25Dn3Azi6hyP+S9TMGMyn I7w6EPMOW28hEvgHmLwk/LQCi3TdOZYnx061momW0rY8VUUe0IdBMJLFT0cBBCYc Pf0h3wwwbUBaoAY3YS1TzDXeEFN6DhSrzzTGbzfr5v215QJiOI5bNkM0PVmeQOgu E/ZL7P5MlLAfW9nUa5KM0MXK2Fa3/jyejkqzZru6FjtdyWt5OBD5aGkZaPRlQi40 9rUWT4qkjIo+MTzryMo29Wl4Mg3tc8wqNMXZycIu1rY/Ez+1SzQmNBt9b6JUlLMA 5syOVj78YsYtlE6Y6BUrssZyRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl+0wnE Muo5C8Ap/tdB20Ntc13QMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAryRRWlsN0cELL0ELTHdI7Feg9Bper915zbIojRMFFtrvnVw48qlLX +4sF2dvHPqUIAMNSp+JZy/Au5WAqk3kXpaESOPRgNu6N9BE2u8okEvzRt0KECnMW lxkyuoDRuwdphyyZW1+TLIS0f5QWLM6YaKIlIGLD37QmeoQPja6Piha0NW7pva/8 HGjHRyWv/zBce6LIrlVZgG3qurTWJFAFOACZ65BGK+f87wXc1TLQY7VCeD9f2Qr0 TLkgKoxmfPDBa2xsiJTF6b6MAPQrYnVt3cgHV9lmKDu0ybQ9WBFweJeL3LBES5ri Yimr+S042qEr5d1t7iCMl918GwGavGJ1 -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:40 2025 by rpki-client